Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/LobJ1pt2SQSUvqPNuBjQ6G4I5mE.roa
File: LobJ1pt2SQSUvqPNuBjQ6G4I5mE.roa (raw, json)
Hash identifier: 8eNbPfrmzgzBVPelyFot6Fft8/UxgFOrKi+00YBovnc=
Subject key identifier: 2E:86:C9:D6:9B:76:49:04:94:BE:A3:CD:B8:18:D0:E8:6E:08:E6:61
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AEE999CBC47C37658AB745F82CC2B7
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/LobJ1pt2SQSUvqPNuBjQ6G4I5mE.roa
Signing time: Tue 26 Nov 2024 13:35:13 +0000
ROA not before: Tue 26 Nov 2024 13:35:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36631
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:ae:e9:99:cb:c4:7c:37:65:8a:b7:45:f8:2c:c2:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e86c9d69b76490494bea3cdb818d0e86e08e661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f3:24:85:8d:06:98:70:f4:c8:4d:38:a8:8f:
7d:0f:7b:4b:c0:18:c8:e9:34:16:18:f9:69:68:66:
ef:b6:41:4b:39:2d:9e:dd:9b:a8:f8:2a:65:5c:d9:
ca:17:4a:e3:d7:24:59:3f:f7:15:e4:68:b4:b9:2d:
35:e7:23:f0:31:74:2d:4e:d8:d5:fa:04:c8:b5:6b:
31:76:c4:21:42:76:ce:30:c5:ce:08:38:4a:ab:91:
60:b3:2d:d6:78:c7:ac:34:f0:04:16:fb:77:c9:45:
92:e5:87:59:c7:28:ee:06:d9:8c:af:0b:21:c4:97:
72:b6:19:b7:36:8b:5e:0a:25:5a:bc:f1:3a:6d:e0:
70:c9:e9:f2:9b:c1:11:25:45:f3:20:0e:91:e4:47:
0c:c9:5c:c8:ef:4a:ab:19:4b:60:4d:33:d4:6a:db:
a9:6b:df:85:65:3a:fb:8a:7a:3c:38:c3:0b:bc:7e:
41:55:a7:38:7a:42:67:0b:7e:bb:14:18:c4:f2:99:
3a:73:8c:ec:b9:00:78:b6:13:9e:13:e3:17:84:6d:
a5:e7:13:b0:ea:04:c6:0b:1e:87:39:47:f0:fd:1c:
96:2a:57:f0:82:2b:52:a7:0d:4f:5a:e8:0f:5f:7f:
71:c0:1c:82:78:9c:bb:ae:1c:3a:a1:76:76:cc:7c:
f0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:86:C9:D6:9B:76:49:04:94:BE:A3:CD:B8:18:D0:E8:6E:08:E6:61
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/LobJ1pt2SQSUvqPNuBjQ6G4I5mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
08:7b:7d:d5:2c:68:e9:5b:81:08:b9:ff:d2:10:41:b5:9a:41:
c6:a9:df:da:da:c9:0a:36:77:8a:87:cb:64:dd:2d:74:46:f9:
a2:53:a6:9e:f6:9a:a4:62:8e:50:6a:83:ae:56:7b:a7:61:60:
2f:58:ae:24:ca:ab:5f:f2:c0:db:5a:8c:44:4c:9a:5b:cb:87:
e0:4f:9f:1e:e4:63:2f:22:3a:af:ba:a6:ee:a1:9b:da:56:de:
57:ed:ba:42:bd:d1:8d:8e:2d:22:6b:70:5e:02:4c:41:70:77:
74:ac:fd:49:27:55:cc:68:ca:92:f1:4a:2f:ad:70:8b:5d:18:
c6:41:25:4c:ed:e8:95:26:98:2d:28:31:83:a6:15:51:31:c9:
1a:c9:34:1c:15:2b:da:10:ed:32:9b:35:e0:2b:aa:8e:1c:d8:
09:9f:c6:6c:dc:d3:b1:ca:83:ab:ec:6b:b0:2b:1f:7e:f3:99:
8f:b3:7e:d6:3b:f3:36:05:3b:9b:3a:bf:1e:0d:e9:cc:bc:90:
44:df:df:23:c4:ce:ea:c7:80:0d:eb:3a:bc:56:a3:72:96:e8:
24:96:4c:ff:5c:66:20:eb:7d:e5:82:cc:92:98:c2:7d:9f:53:
c6:aa:d4:ac:68:ae:29:9e:d0:4a:a8:ef:c6:d9:5f:3c:28:69:
9c:13:41:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:30 2025 by rpki-client